Choosing between general and embedded passwords

You have two kinds of passwords you can create: general and embedded.

General passwords

A general password is a password that's created from the main Passwords section, and then usually linked as a related item to the relevant assets.

These passwords have many uses, but should always be used whenever you have a password that can be linked to multiple assets. Think one to many relationships.

For example, you have a password for a domain registrar (such as GoDaddy) that's associated with several domains. You could create embedded passwords in the relevant assets instead, but each time the same data is entered more than once, it causes a drop in productivity levels and also introduces the risk of data entry error.

Key benefits of general passwords:

  • Eliminates data duplication and reduces risk of errors or accidental deletion.
  • Can set security permissions on just the password itself (which you can't do with embedded passwords).

When this kind of password can be particularly useful:

  • Active Directory
  • Domain registrar
  • DNS hosting
  • Web hosting

Embedded passwords

An embedded password is a password that is created from within configuration items and other assets through an Embedded Passwords section on the side panel.

You may want to use an embedded password when you have a password that can only be used in one context, such as one device. Think one to one relationships.

When this kind of password may be useful:

  • Administrative Web Interface (username, password, and URL) for a firewall or switch
  • Local admin account on a Windows server

Protecting your passwords

We know how important your password security is to you. With general passwords, you will always have full control at a granular level over who can access each individual password by limiting access to any combination of users and groups. But keep in mind that there are no permission settings for individual embedded passwords. To change who can access an embedded password, you would need to apply permissions to the containing item.

For more information about managing network and server credentials in IT Glue, see Passwords.

Was this article helpful?
26 out of 29 found this helpful